Cyber Attack cyber

LexisNexis

May 29, 2025 1 min read
LexisNexis

LexisNexis has suffered a data breach after a cyberattack. Personal information was taken affecting around 360,000 users. The leaked information includes names, phone numbers, email addresses, home addresses, SSNs, and driver’s license details. The data was acquired by an unknown third party from a third-party software development platform. No sensitive personal information, financial, or credit card information was accessed, and the organization’s infrastructure, systems, and products remain uncompromised. The incident was detected in April 2025 after receiving information from the attackers and disclosed in May 2025.

Source: https://www.techradar.com/pro/security/over-364-000-people-have-personal-info-leaked-following-hack-on-data-broker-lexisnexis

TPRM report: https://scoringcyber.rankiteo.com/company/142275

"id": "1421001052925",
"linkid": "142275",
"type": "Cyber Attack",
"date": "5/2025",
"severity": "85",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"
{'affected_entities': [{'customers_affected': 364333,
                        'industry': 'Data analytics and risk management',
                        'name': 'LexisNexis',
                        'type': 'Data analytics and risk management firm'}],
 'attack_vector': 'Unauthorized access to a third-party software development '
                  'platform',
 'data_breach': {'data_exfiltration': 'Yes',
                 'number_of_records_exposed': 364333,
                 'personally_identifiable_information': 'Yes',
                 'sensitivity_of_data': 'High',
                 'type_of_data_compromised': ['Names',
                                              'Phone numbers',
                                              'Email addresses',
                                              'Home addresses',
                                              'SSNs',
                                              'Driver’s license details']},
 'date_detected': 'April 2025',
 'date_publicly_disclosed': 'May 2025',
 'description': 'LexisNexis has suffered a data breach after a cyberattack, '
                'affecting around 360,000 users. Personal information was '
                'taken, including names, phone numbers, email addresses, home '
                'addresses, SSNs, and driver’s license details.',
 'impact': {'data_compromised': ['Names',
                                 'Phone numbers',
                                 'Email addresses',
                                 'Home addresses',
                                 'SSNs',
                                 'Driver’s license details']},
 'initial_access_broker': {'entry_point': 'Third-party software development '
                                          'platform'},
 'motivation': 'Data theft',
 'references': [{'source': 'The Register'}],
 'response': {'communication_strategy': 'Notification letter sent to affected '
                                        'individuals',
              'third_party_assistance': 'Forensic firm'},
 'threat_actor': 'Unknown third party',
 'title': 'LexisNexis Data Breach',
 'type': 'Data Breach'}
Published by
Jeremy C
Jeremy C
You might also like
Great! Next, complete checkout for full access to Rankiteo Blog.
Welcome back! You've successfully signed in.
You've successfully subscribed to Rankiteo Blog.
Success! Your account is fully activated, you now have access to all content.
Success! Your billing info has been updated.
Your billing was not updated.